Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,840 advisories

Loading
lz4-sys vulnerable to memory corruption via issue in liblz4 Critical
GHSA-9q5j-jm53-v7vr was published for lz4-sys (Rust) Sep 1, 2022
Out of bounds write in traitobject Critical
CVE-2020-35881 was published for traitobject (Rust) Aug 25, 2021
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption... Critical Unreviewed
CVE-2017-2999 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4240 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4235 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4239 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4246 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4244 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4245 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed
CVE-2016-4242 was published May 14, 2022
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and... Critical Unreviewed
CVE-2016-0981 was published May 17, 2022
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and... Critical Unreviewed
CVE-2016-0964 was published May 17, 2022
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function... Critical Unreviewed
CVE-2022-24995 was published Mar 11, 2022
The telnet_input_char function in opt/src/accel-pppd/cli/telnet.c suffers from a memory... Critical Unreviewed
CVE-2022-0982 was published Mar 17, 2022
A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdf_prepare_outpages(), in... Critical Unreviewed
CVE-2021-23165 was published Mar 17, 2022
H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateIpv6Params. Critical Unreviewed
CVE-2022-37098 was published Aug 26, 2022
stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a... Critical Unreviewed
CVE-2021-45078 was published Dec 16, 2021
H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EnableIpv6. Critical Unreviewed
CVE-2022-37096 was published Aug 26, 2022
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to... Critical Unreviewed
CVE-2022-23943 was published Mar 15, 2022
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the URLs parameter in... Critical Unreviewed
CVE-2022-25452 was published Mar 19, 2022
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the deviceId... Critical Unreviewed
CVE-2022-25449 was published Mar 19, 2022
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the ntpserver... Critical Unreviewed
CVE-2022-25457 was published Mar 19, 2022
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the security_5g... Critical Unreviewed
CVE-2022-25456 was published Mar 19, 2022
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the startip parameter... Critical Unreviewed
CVE-2022-25461 was published Mar 19, 2022
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the endip parameter... Critical Unreviewed
CVE-2022-25460 was published Mar 19, 2022
ProTip! Advisories are also available from the GraphQL API